// For flags

CVE-2017-3878

 

Severity Score

5.3
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A Denial of Service vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. Affected Products: This vulnerability affects Cisco Nexus 9000 Series Switches that are running Cisco NX-OS Software and are configured to allow remote Telnet connections to the device. More Information: CSCux46778. Known Affected Releases: 7.0(3)I3(0.170). Known Fixed Releases: 7.0(3)I3(1) 7.0(3)I3(0.257) 7.0(3)I3(0.255) 7.0(3)I2(2e) 7.0(3)F1(1.22) 7.0(3)F1(1).

Una vulnerabilidad de denegación de servicio en la funcionalidad de inicio de sesión remota de Telnet del software Cisco NX-OS que se ejecuta en Cisco Nexus 9000 Series Switches podría permitir a un atacante remoto no autenticado provocar que un proceso Telnet utilizado para iniciar sesión finalizara inesperadamente y que el intento de inicio de sesión fallara. No hay impacto en el tráfico de usuarios que fluye a través del dispositivo. Productos afectados: Esta vulnerabilidad afecta a los conmutadores Cisco Nexus serie 9000 que ejecutan el software Cisco NX-OS y están configurados para permitir conexiones Telnet remotas al dispositivo. Más información: CSCux46778. Lanzamientos afectados conocidos: 7.0(3)I3(1) 7.0(3)I3(0.257) 7.0(3)I3(0.255) 7.0(3)I2(2e) 7.0(3)F1(1.22) 7.0(3)F1(1).

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2016-12-21 CVE Reserved
  • 2017-03-17 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 92160yc Switch
Search vendor "Cisco" for product "Nexus 92160yc Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 92300yc Switch
Search vendor "Cisco" for product "Nexus 92300yc Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 92304qc Switch
Search vendor "Cisco" for product "Nexus 92304qc Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9236c Switch
Search vendor "Cisco" for product "Nexus 9236c Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9272q Switch
Search vendor "Cisco" for product "Nexus 9272q Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93108tc-ex Switch
Search vendor "Cisco" for product "Nexus 93108tc-ex Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93120tx Switch
Search vendor "Cisco" for product "Nexus 93120tx Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93128tx Switch
Search vendor "Cisco" for product "Nexus 93128tx Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93180lc-ex Switch
Search vendor "Cisco" for product "Nexus 93180lc-ex Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93180yc-ex Switch
Search vendor "Cisco" for product "Nexus 93180yc-ex Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9332pq Switch
Search vendor "Cisco" for product "Nexus 9332pq Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9336pq Aci Spine Switch
Search vendor "Cisco" for product "Nexus 9336pq Aci Spine Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372px-e Switch
Search vendor "Cisco" for product "Nexus 9372px-e Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372px Switch
Search vendor "Cisco" for product "Nexus 9372px Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372tx-e Switch
Search vendor "Cisco" for product "Nexus 9372tx-e Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372tx Switch
Search vendor "Cisco" for product "Nexus 9372tx Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9396px Switch
Search vendor "Cisco" for product "Nexus 9396px Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9396tx Switch
Search vendor "Cisco" for product "Nexus 9396tx Switch"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.0\(3\)i3\(0.170\)
Search vendor "Cisco" for product "Nx-os" and version "7.0\(3\)i3\(0.170\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9508 Switch
Search vendor "Cisco" for product "Nexus 9508 Switch"
--
Safe